Stories
Slash Boxes
Comments
Search

News for nerds, stuff that matters

Slashdot Log In

Log In

[ Create a new account ]

DMUTPeregrine (612791)

DMUTPeregrine
  (email not shown publicly)

DMUTPeregrine (612791)

by Anonymous Coward on Wednesday June 25, @08:03AM (#23927511)
Attached to: Cool/Weird Stuff To Do On a Cluster?

Common sense such as yours isn't appreciated in discussions like these on slashdot. Please post something about how the environment is fucked up, that it's all the republicans fault, and how it's up to us - as good liberals who are just a little bit smarter than everyone else - to save the world from its ignorant self. That will get you modded up fast. Telling the truth, not so much.

+ -
 [+] comment
by New Here on Friday June 06, @02:03PM (#23680549)
Attached to: Apple Expected to Demo Leopard Successor Next Week
No, I'm New Here
+ -
 [+] comment
by Anonymous Coward on Sunday June 01, @12:03AM (#23609687)
Attached to: Full Disclosure and Why Vendors Hate It
Women's disinterest in IT is as plain and simple as your disinterest for knitting, facials, basket weaving, romance novels and shopping. Genetic differences exist between races and sexes. Stop attempting to impose equality across things which obviously aren't. If 2000 years of history are not enough to prove that women simply have very little interest in technical fields and IT, then you are blind fool. Mind you, this is not to say that women are less competent than men in general, but rather that their competencies have been honed on different subject matters.
+ -
 [+] comment
by SiliconEntity on Tuesday May 13, @04:03PM (#23392602)
Attached to: Debian Bug Leaves Private SSL/SSH Keys Guessable
The patch that broke it was checked in by Kurt Roeckx [kroeckx@debian.org]. Don't know if he broke it or if he was just the gatekeeper for checkins. See:

http://svn.debian.org/viewsvn/pkg-openssl/openssl/trunk/rand/md_rand.c?rev=141&view=diff&r1=141&r2=140&p1=openssl/trunk/rand/md_rand.c&p2=/openssl/trunk/rand/md_rand.c which shows the change that introduced the bug; and its parent node:
http://svn.debian.org/viewsvn/pkg-openssl/openssl/trunk/rand/?rev=141#dirlist which shows the maintainer responsible.

From looking at this patch, I think this is what happened. valgrind complained about a rather unusual coding convention in ssleay_rand_bytes. This is a function that returns random data into a buffer. However, before writing into the buffer, it reads from the buffer and incorporates the old contents into the internal random state. valgrind complained about this use of an output buffer for input. Normally you would never want to use potentially uninitialized data like this, but in this case it is OK as all that is being done is the data is being folded into the random state. In the worst case, this can't hurt, and maybe it will help, if the old data had some randomness.

Anyway, valgrind complained about it, and the maintainer commented out the use of the buffer. That would actually be OK, it is not a big deal. But the implementor made a mistake, and also commented out another similar usage, in a different function, ssleay_rand_add. This was a huge mistake, as the purpose of ssleay_rand_add is to add randomness into the random state. In that function, buf is an INPUT buffer, and adding it into the random state is perfectly legitimate, in fact it is the whole purpose of the function. But apparently because it looked similar to the questionable usage in ssleay_rand_bytes, the maintainer commented out the code in ssleay_rand_add at the same time. (I don't know whether valgrind also complained about this second usage, but if so, it was mistaken. I think it's more likely that the maintainer just got fooled and over-generalized from the valgrind complaint.)

So the whole thing was an attempt to clean up code and remove warnings, but the fix accidentally broke a crucial piece of functionality, rendering ssleay_rand_add completely non-functional. So any attempt to add randomness into the RNG state, such as for seeding purposes, is ineffective. The random state ends up with much less variability, and therefore all the crypto is weak. As Bruce Schneier points out, bad crypto looks much the same as good crypto, so it took this long to notice it.

Hats off to the reviewer who picked up on the problem. Don't know who it was, but the same Kurt Roeckx [kroeckx@debian.org] checked in the fix.
+ -
 [+] comment

  Church of Scientology violates Federal Law[->] 2008-03-14 16:30 FreedomToThink

Submitted by FreedomToThink on Friday March 14, @04:30PM
FreedomToThink writes "This is a very long story I'm sure the editors will have fun with, but I couldn't see how to cut it down at all.

On the eve of the Ides of March protest, from the source of the recent 'Anonymous' submitted CCHR leak on wikileaks, comes this message

"Dear $cientology,You attempt injunctions.I respond.Shall we continue the game? Much Love, DEEP CLAM"

Included was yet another PDF this time including yet more emails leaked from a Church of Scientology front group.

Vote Rigging?

From: "Mike Kaplan" <mkaplan@tampabay.rr.com>
To: <Undisclosed-Recipient:;>
Subject: Fw: RE-ELECT FRANK HIBBARD, MAYOR OF CLEARWATER
Date: Sun, 6 Jan 2008 11:53:07 -0400

See below. Everyone in Clearwater MUST vote. Every vote will be needed to be
sure Hibbard gets re-elected. The alternative is Rita Garvey who is an SP.

— Original Message —
From: Shelly <mailto:shelly.bauer@Earthlink.net> Bauer
To: Shelly Bauer <mailto:shelly.bauer@earthlink.net>
Sent: Sunday, January 06, 2008 8:09 AM
Subject: RE-ELECT FRANK HIBBARD, MAYOR OF CLEARWATER

DO YOUR PART
RE-ELECT FRANK HIBBARD
MAYOR OF CLEARWATER
VOTE!!!
JANUARY 29TH
TAKE NOTHING FOR GRANTED!

Lunch with your preferred Presidential candidates for a high price?

ONE SEAT LEFT

I have arranged a private one-hour luncheon with Ron Paul on 11/28 in St.
Pete when he will be in town for the CNN/YouTube Republican debate.

This luncheon is reserved for $1000+ donors to Ron Paul's presidential
campaign. 19 people so far have paid and confirmed and will have the honor
and pleasure of having lunch and communicating with Ron Paul directly.


From the head of the "Non Proffit" CCHR Bruce Wiseman

Go the the HELP committee website. The link is here.
http://help.senate.gov/About.html
Here you will see the names of the Committee members on the left hand
side
of the page. Please go to the individual websites of the Republican =
members
(this will take just a bit of leg work on your part by putting their =
name
into Google) and calling their office or sending a fax to them (email is =
the
least effective) stating your opposition to S. 1375 The Mother's Act.


Currently, the law prohibits political campaign activity by charities and churches by defining a 501(c)(3) organization as one "which does not participate in, or intervene in (including the publishing or distributing of statements), any political campaign on behalf of (or in opposition to) any candidate for public office."

An OCMB (Operation Clambake Message Board)regular adds :

I downloaded myself a copy and started looking through them. I found an interesting one on pages 47-48.
http://rapidshare.com/files/99292051/CCHRLeak3.pdf.html

Karin Pouw of OSA of CofS writes a message.
It's forwarded by Michael Genung. He's the guy who runs ACSR, Association for Citizens Sociel Reform. http://www.citizensforsocialreform.org/ ["CSR Background and Philosopy: CSR was founded in 2001 by a group of Scientologists and other like-minded individuals concerned with the escalating social ills in society. CSR's purpose is to work with in the field of public policy to bring about more effective and humane solutions to these social ills of illiteracy, criminality substance abuse and general decay of character."]

Then it's forwarded by Doyle Mills, of LEAF fame (Letters to the Editor Attack Force).
Then it's forwarded by Mary C. (possibly one of two Mary C's I'm thinking of, but unsure).
Then it's forwarded by Mike Kaplan, another person who runs an email list and forwards CCHR type stuff to CofS members.

If that ain't stringing a line from the CofS to CCHR and the CofS front group ("grassroots") movements, then I don't know what is!


Apologies in advance as the Enturbulation servers will not be up to a slashdotting so the Coral Cache link is here Enturbulation Discussion (already cached for you)

ANYONE CAN REPORT TAX FRAUD DIRECTLY TO THE IRS : http://www.irs.gov/compliance/enforcement/article/0,,id=106778,00.html It does require that you print out and mail in an actual hardcopy, but it does not require you to identify yourself.

Just a casual user passing on a message from the Enturbulation forum, this is already out there, there's no reason to attack the messenger."
http://rapidshare.com/files/99292051/CCHRLeak3.pdf.html
+ -
 [+] submission, politics, government, scientology, wikileaks, anonymous, irs

  Your Rights Online: Protecting Online Identity Through Cryptography 2008-02-09 02:27

Posted by ScuttleMonkey on Saturday February 09, @02:27AM
from the don't-show-me-yours-and-i-wont-show-you-mine dept.
A new startup, Credentica, hopes to offer the ability for you to perform secure transactions using the smallest amount of personal information possible. Their goal is to both protect privacy and enhance security, which they hope will be a mutually inclusive process. "The technique employs secure multi-party computation, a branch of cryptography that can calculate meaningful answers about secret information by knowing only some non-revealing clues about that secret. The underlying theory was demonstrated in 1982 by Andrew Yao in the so-called Millionaire's Problem [...] U-Prove employs an ID token, a special kind of digital certificate that allows for minimal selective disclosure. The tokens can store all kinds of information, but users can disclose only the minimum amount of data required in any given transaction. They leave no unwanted data trails and permit both anonymity and pseudonymity."
+ -
 [+] story, yro, privacy, security, verboten, terroristsdream, zeroknowledge

  Stem Cells Shown to Protect Dying Motor Neurons 2007-08-02 16:40 Penguinshit

Submitted by Penguinshit on Thursday August 02 2007, @04:40PM
Penguinshit writes "Amyotrophic lateral sclerosis (ALS) is a fatal, progressive neurodegenerative disease characterized by rapid loss of muscle control and eventual paralysis due to the death of large motor neurons in the brain and spinal cord. Growth factors such as glial cell line derived neurotrophic factor (GDNF) are known to protect motor neurons from damage in a range of models. Human cortical neural progenitor cells derived from fetal tissue (ie. stem cells) can be expanded in culture for long periods and survive transplantation into the central nervous system, in some cases making large numbers of GFAP positive astrocytes. They can also be genetically modified to release GDNF and thus act as long-term 'mini pumps' in specific regions of the brain. In this study a team at UW-Madison's Waisman Center genetically modified human neural stem cells to release GDNF and transplanted them into the spinal cord of rats with mutant SOD1. Following unilateral transplantation into the spinal cord of the rats there was robust cellular migration into degenerating areas, efficient delivery of GDNF and remarkable preservation of motor neurons at early and end stages of the disease within chimeric regions.

This work is especially important to me, as I have been living with ALS for almost three years."
+ -
 [+] submission, science, biotech
Submitted by on Thursday August 02 2007, @04:32PM
An anonymous reader writes "Developer Dennis van Weeren recently announced completion of his from-scratch completely re-engineered Amiga chipset. His PCB design is fully operational and compatible and his verilog code has been released under GPL. Will this finally give the Amiga community a new breath of life?"
http://home.hetnet.nl/~weeren001/
+ -
 [+] submission, hardware, amiga

  Hardware: TJX Breach Began With WEP Crack 2007-05-05 15:33

Posted by kdawson on Saturday May 05 2007, @03:33PM
from the pwn3d-by-Pringles dept.
An anonymous reader sends us to the Wall Street Journal for a detailed report on what is known to date about the TJX data breach. It seems that the loss of over 45 million credit card numbers and more than 450,000 SSNs, driver's license numbers, and military identifications began with someone using a "telescope-shaped" antenna at a wireless link at a Marshall's near St. Paul, Minnesota in July 2005. The link was encrypted using WEP, which had been known to be broken since 2001. The crackers who got into the TJX central databases are believed to be Romanians or Russians with ties to the Russian mobs. The eventual cost of the TXJ fiasco could exceed $1 billion — not including the numerous lawsuits filed against the retailer.
+ -
 [+] story, hardware, security, encryption, it, wireless, wep

  Cold Fusionat room temperature possible after all? 2007-05-05 15:25 StarfishOne

Submitted by StarfishOne on Saturday May 05 2007, @03:25PM
StarfishOne writes "DailyTech reports the following interesting bit of news today:

" Cold fusion, the ability to generate nuclear power at room temperatures, has proven to be a highly elusive feat. In fact, it is considered by many experts to be a mere pipe dream — a potentially unlimited source of clean energy that remains tantalizing, but so far unattainable.

However, a recently published academic paper from the Navy's Space and Naval Warfare Systems Center (Spawar) in San Diego throws cold water on skeptics of cold fusion. Appearing in the respected journal Naturwissenschaften, which counts Albert Einstein among its distinguished authors, the article claims that Spawar scientists Stanislaw Szpak and Pamela Mosier-Boss have achieved a low energy nuclear reaction (LERN) that can be replicated and verified by the scientific community."


NewScientist is also running an article on this subject, but that article is only available for subscribers."
+ -
 [+] submission, science, hardhack
  • Nothing More

  Lone Programmer Writes 253 Webcam Drivers for Linu 2007-04-30 15:26 mrneutron2004

Submitted by mrneutron2004 on Monday April 30 2007, @03:26PM
mrneutron2004 writes "We ran across this interview/story today and felt compelled to repost it. A French physician and ardent linux support is the ONE MAN you can all thank for adding support for 253 webcam's in Linux. The Open Source OS world may still be a bit of a mess when competing with the ease of Windows, but efforts like this make you wonder. One man with drive, tenacity, and no funding does what noone else can do. And none of the major linux distributions back this guy's efforts, even the big players dipping into the corporate worlds coffers. http://www.fastsilicon.com/latest-news/lone-progra mmer-writes-253-webcam-drivers-for-linux.html?Item id=60"
+ -
 [+] submission, linux, software
  • Nothing More

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2008 SourceForge, Inc.